9 matches found
RHEL 6 : activemq (RHSA-2014:0245)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0245 advisory. Apache ActiveMQ provides a SOA infrastructure to connect processes across heterogeneous systems. A flaw was found in Apache Camel's parsing ...
at.researchstudio.sat:won-core (>=0.2 <=0.9), at.researchstudio.sat:won-cryptography (>=0.3 <=0.6) +269 more potentially affected by CVE-2014-0003 via org.apache.camel:camel-core (>=2.12.0 <=2.12.2)
org.apache.camel:camel-core MAVEN version =2.12.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.4, =0.9 and more Source cves: CVE-2014-0003 Source advisory: OSV:GHSA-H6RP-8V4J-HWPH...
Apache Camel XSLT Component Java Code Execution (CVE-2014-0003)
A code execution vulnerability has been reported in Apache Camel. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted XML message to the vulnerable server. Successful exploitation could result in the execution of arbitrary Java code...
Important: Red Hat Security Advisory: Red Hat JBoss BRMS 6.0.1 update
Red Hat JBoss BRMS 6.0.1, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...
Important: Red Hat Security Advisory: Red Hat JBoss BPM Suite 6.0.1 update
Red Hat JBoss BPM Suite 6.0.1, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...
CVE-2014-0003
The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message...
CVE-2014-0003
CVE-2014-0003 affects the Apache Camel XSLT component. It allows a remote attacker to execute arbitrary Java methods by sending a crafted message due to the XSLT component’s ability to call external Java methods. Affected are Camel 2.11.x prior to 2.11.4 and 2.12.x prior to 2.12.3 (and possibly e...
Apache Camel远程代码执行漏洞(CVE-2014-0003)
BUGTRAQ ID: 65902 CVECAN ID: CVE-2014-0003 Apache Camel是基于已知的企业级集成模式上的开源集成框架。 Apache Camel 2.11.0-2.11.3、Apache Camel 2.12.0-2.12.2版本的XSLT组件允许XSL样式表调用外部Java方法。可以向xslt Camel例程提交消息的远程攻击者,利用此漏洞可在Camel服务器进程上下文中执行任意远程代码。 0 Apache Group Camel 2.12.3 Apache Group Camel 2.11.4 厂商补丁: Apache Group...
Important: Red Hat Security Advisory: activemq security update
An updated activemq package that fixes multiple security issues is now available for Red Hat OpenShift Enterprise 2.0. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...